On Jul 30, 2020, at 5:37 PM, Baldur Norddahl wrote:
>
> Telia implements RPKI filtering so the question is did it work? Were any
> affected prefixes RPKI signed? Would any prefixes have avoided being hijacked
> if RPKI signing had been in place?
>
> Regards
>
> Baldur - who had to turn off
And bgp "optimizer" won't do that
At best, they will let you get the less worst
On 8/2/20 6:36 PM, Robert Raszuk wrote:
if I care about my services I want to exit the best
performing way to reach back customers.
so i was trying to ensure i had a current set of TALs and was directed to
https://www.ripe.net/manage-ips-and-asns/resource-management/certification/ripe-ncc-rpki-trust-anchor-structure
the supposed TAL at the bottom of the page is pretty creative. anyone
know what to do there?
i kinda
> i kinda hacked with emacs and get
>
> rsync://rpki.ripe.net/ta/ripe-ncc-ta.cerpublic.key.info
>
>
>
Mark,
I think trying to implement some kind of license requirement for DFZ
participants is a step in the wrong direction and a waste of time and
money. How would you even enforce it? If the goal is just to provide a
bigger barrier to "kids born after 9/11", why not just increase RIR fees,
or add
On Sun, Aug 2, 2020 at 9:36 AM Robert Raszuk wrote:
> Hi Ca,
>
> > Noction is sold to ISPs, aka transit AS, afaik
>
> Interesting.
>
> My impression always was by talking to Noction some time back that mainly
> what they do is a flavor of performance routing. But this is not about
> Noction
I'm sorry, I didn't realize that anyone would get ruffled.
On Sat, Aug 1, 2020 at 11:38 PM Scott Weeks wrote:
>
>
> --- ed...@ieee.org wrote:
> From: Etienne-Victor Depasquale
>
> See, for example, Azhar Sayeed's (Red Hat) contribution here
>
On 1/Aug/20 22:29, Ryan Hamel wrote:
> Job,
>
> I disagree on the fact that it is not fair to the BGP implementation
> ecosystem, to enforce a single piece of software to activate the
> no-export community by default, due to ignorance from the engineer(s)
> implementing the solution. It should
On 1/Aug/20 23:53, John Lee wrote:
>
> In 2000 we put our first pre-standard cloud together with multi
> Gigabit routers and Sun workstations at 45 PoPs in the US, 3 in Asia
> and 6 in Europe and implemented a "cloud" O/S. Our fastest links were
> 10 Gbps. Now we can have 2-50 Tbps per fiber
Hi Ca,
> Noction is sold to ISPs, aka transit AS, afaik
Interesting.
My impression always was by talking to Noction some time back that mainly
what they do is a flavor of performance routing. But this is not about
Noction IMHO.
If I am a non transit ASN with N upstream ISPs I want to exit not
There's always someone ruffled about something. Don't give it a second thought.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
http://www.midwest-ix.com
- Original Message -
From: "Etienne-Victor Depasquale"
To: sur...@mauigateway.com
On Sun, Aug 2, 2020 at 4:34 AM Robert Raszuk wrote:
> All,
>
> Watching this thread with interest got an idea - let me run it by this
> list before taking it any further (ie. to IETF).
>
> How about we learn from this and try to make BGP just a little bit safer ?
>
> *Idea: *
>
> In all stub
On 2/Aug/20 01:44, Ryan Hamel wrote:
> Matt,
>
> Why are you blaming the ease of use on the vendor, for the operators
> lack of knowledge regarding BGP? That is like blaming a vehicle
> manufacturer for a person pressing the gas pedal in a car and not
> giving a toss about the rules of the road.
All,
Watching this thread with interest got an idea - let me run it by this list
before taking it any further (ie. to IETF).
How about we learn from this and try to make BGP just a little bit safer ?
*Idea: *
In all stub (non transit) ASNs we modify BGP spec and disable automatic
iBGP to eBGP
On 1/Aug/20 18:58, Job Snijders wrote:
> Following a large scale BGP incident in March 2015, noction made it
> possible to optionally set the well-known NO_EXPORT community on route
> advertisements originated by IRP instances.
>
> "In order to further reduce the likelihood of these
I need to get in touch with someone at Comcast urgently.
We just acquired an office. Their service is hosed up and their IPs are
routing out of Washington State to Ashburn VA before dying. A tech is
on-site and says there's something wrong with the account and that it might
be because it's a
I guess I missed your mention of "guidance rather than regulation", and am
still missing it, unless you're referring to another thread.
If you want to acknowledge a problem with internet governance and bring it
to this mailing list for discussion, that sounds like a good idea. But the
only
Someone reached out who could shove a new service order into the queue for
the tech and we'll deal with the old broken connection on Monday when the
Comcast premier group opens back up.
Thanks and sorry for the noise.
-A
On Sun, Aug 2, 2020 at 3:55 PM Aaron C. de Bruyn wrote:
> I need to get
On 2/Aug/20 21:37, Ross Tajvar wrote:
> Mark,
>
> I think trying to implement some kind of license requirement for DFZ
> participants is a step in the wrong direction and a waste of time and
> money. How would you even enforce it? If the goal is just to provide a
> bigger barrier to "kids born
I don't think there's any requirement for it to be for downstream customers
(from a BGP perspective) or any relatance to transit ASes.
Web hosting companies, their AS, no client ASes, huge optimization going on.
I'd think mostly because the major eyeball ISPs have garbage peering policies
On 3/Aug/20 00:03, Ross Tajvar wrote:
> I guess I missed your mention of "guidance rather than regulation",
> and am still missing it, unless you're referring to another thread.
>
> If you want to acknowledge a problem with internet governance and
> bring it to this mailing list for discussion,
On 2/Aug/20 06:51, Ahmed elBorno wrote:
> Maybe I am off topic a little bit here and i'd like to be educated if
> i am wrong but I think those 5G applications will move from VMs into
> containers/microservices when their vendors see a business case to
> rearchitect them, maybe its already
On 2/Aug/20 19:22, Darrell Budic wrote:
> Oh uh, I’m getting close to getting RPKI going on my mx204s, or was until you
> posted that. What’s the story there, and perhaps which junos version?
None that I know if.
We have it working well (RPKI + ROV) on MX204's running Junos 19.2.
Curious to
23 matches
Mail list logo